Loading ...
Loading ...
Loading ...
![](https://files.manualsfile.com/90497085-0470-001-eol/bg28.png)
AXIS P3363–V
System Options
Certificates
CA Certificate The CA certificate is used to validate the identity of the authentication server. Enter the path to
the certificate directly, or lo cate the file using the Browse button. Then click Upload.Toremove
acertificate , click Remove.
Client certificate
Client private k ey
The clie nt certificate and private key are used to au then tica te the network device. They can be
uploaded as separ ate files or in one co m bined file (e.g. a PFX file or a PEM file). Use the Client
private key field if uploading one combined file. For each file, enter the path to the file, or locate the
file using the Browse button. Then click Upload.Toremoveafile, c lick Remove.
Settings
EAPOL version
SelecttheEAPOLversion(1or2)asusedinyournetworkswitch.
EAP identity
Enter the user identity (maximum 16 characters) associated with your certificate.
Private key password
Enter the password (maximum 16 characters) for the private key.
Enable IEEE 802.1X
Check the bo x to enable the IEEE 802.1X protocol.
IEEE 802.1X
IEEE 802.1X is a standard for port-based Network Admission Control providing secure authentication of wired and wireless network
devices. IEEE 802.1X is based on E AP (Extensible Authentication Protocol).
To access a network protected by IEEE 802.1X, devices must be authenticated. The authentication is performed by an authentication
server, typically a RADIUS server, examples of which are FreeRADIUS and Microsoft Internet A uthentication Service.
In Axis implementation, the Axis product and the authentication server identify them s el ves with digital certi fica tes using EA P-TLS
(Extensible Authentication Protocol - Transport Layer Security). The certificates ar
eprovidedbyaCertification Authority (CA).
You need:
•aCAcertificate to authenticate the authentication server
• a CA-signed client certificate to authenticate the Axis product.
To crea te and install certificates, go to System Options > Security > Certificates.See
Certificates, on page 40
.ManyCAcertificates
are preinstalle d.
To allow the product to access a network p rotected by IEEE 802.1X:
1. Go to System Options > Security > IEEE 802.1X.
2. Select a CA Certificate and a Client Certificate from the lists of installed certificates.
3. Under Settings, select the EAPOL version and provide the EAP identity associated with the client certificate.
4. Check the box to enable IEEE 802.1X and click Save.
Note
For authentication to work properly, the date and time settings in the Axis product should be synchronized with an NTP
server. See
Date & Time, on page 41
.
Certificates
Certificates are used to authenticate devices o n a network. Typical a pplications include e ncrypted web browsing (HT TPS), network
protection via IEEE 802.1X and secure upload of images a nd no tification messages for example via email. Two types of certificates
can be u sed with the Axis product:
Server/Client certificates - to authenticate the Axis product
40
Loading ...
Loading ...
Loading ...